> ## Documentation Index
> Fetch the complete documentation index at: https://ngrok.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Get

> Get detailed information about an SSH User Certificate




## OpenAPI

````yaml https://raw.githubusercontent.com/ngrok/ngrok-openapi/refs/heads/main/ngrok.yaml get /ssh_user_certificates/{id}
openapi: 3.0.0
info:
  title: ngrok OpenAPI
  version: 1.0.0
servers:
  - url: https://api.ngrok.com
security:
  - authentication: []
paths:
  /ssh_user_certificates/{id}:
    get:
      tags:
        - SSHUserCertificates
      summary: Get
      description: |
        Get detailed information about an SSH User Certificate
      operationId: SshUserCertificatesGet
      parameters:
        - $ref: '#/components/parameters/ngrokVersion'
        - name: id
          description: |
            a resource identifier
          in: path
          required: true
          schema:
            type: string
      responses:
        '200':
          description: |
            Get detailed information about an SSH User Certificate
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/SSHUserCertificate'
components:
  parameters:
    ngrokVersion:
      name: ngrok-version
      in: header
      required: true
      schema:
        type: integer
        default: 2
  schemas:
    SSHUserCertificate:
      type: object
      properties:
        id:
          description: |
            unique identifier for this SSH User Certificate
          type: string
        uri:
          description: |
            URI of the SSH User Certificate API resource
          type: string
        created_at:
          description: >
            timestamp when the SSH User Certificate API resource was created,
            RFC 3339 format
          type: string
        description:
          description: >
            human-readable description of this SSH User Certificate. optional,
            max 255 bytes.
          type: string
        metadata:
          description: >
            arbitrary user-defined machine-readable data of this SSH User
            Certificate. optional, max 4096 bytes.
          type: string
        public_key:
          description: >
            a public key in OpenSSH Authorized Keys format that this certificate
            signs
          type: string
        key_type:
          description: |
            the key type of the `public_key`, one of `rsa`, `ecdsa` or `ed25519`
          type: string
        ssh_certificate_authority_id:
          description: >
            the ssh certificate authority that is used to sign this ssh user
            certificate
          type: string
        principals:
          description: >
            the list of principals included in the ssh user certificate. This is
            the list of usernames that the certificate holder may sign in as on
            a machine authorizing the signing certificate authority.
            Dangerously, if no principals are specified, this certificate may be
            used to log in as any user.
          type: array
          items:
            type: string
        critical_options:
          description: >
            A map of critical options included in the certificate. Only two
            critical options are currently defined by OpenSSH: `force-command`
            and `source-address`. See [the OpenSSH certificate protocol
            spec](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.certkeys)
            for additional details.
          type: object
        extensions:
          description: >
            A map of extensions included in the certificate. Extensions are
            additional metadata that can be interpreted by the SSH server for
            any purpose. These can be used to permit or deny the ability to open
            a terminal, do port forwarding, x11 forwarding, and more. If
            unspecified, the certificate will include limited permissions with
            the following extension map: `{"permit-pty": "", "permit-user-rc":
            ""}` OpenSSH understands a number of predefined extensions. See [the
            OpenSSH certificate protocol
            spec](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.certkeys)
            for additional details.
          type: object
        valid_after:
          description: >
            the time when the ssh host certificate becomes valid, in RFC 3339
            format.
          type: string
        valid_until:
          description: >
            the time after which the ssh host certificate becomes invalid, in
            RFC 3339 format. the OpenSSH certificates RFC calls this
            `valid_before`.
          type: string
        certificate:
          description: >
            the signed SSH certificate in OpenSSH Authorized Keys Format. this
            value should be placed in a `-cert.pub` certificate file on disk
            that should be referenced in your `sshd_config` configuration file
            with a `HostCertificate` directive
          type: string
  securitySchemes:
    authentication:
      type: http
      scheme: bearer

````